14 DAY TRIAL // Security researchers have come across an interesting Facebook phishing scam. A fake Facebook site is designed not only to harvest usernames and passwords, but also to distribute a piece of malware.
It all starts with a bogus Facebook page which advertises an app that can allegedly tell users who has visited their profile. In order to activate the application, victims are instructed to either sign in to their Facebook account, or download a piece of software.
The malware that’s hidden inside the phony profile viewer is designed to steal information from infected computers. The threat is detected by Symantec as Infostealer.
Once it’s installed on a device, the malware adds registry keys to make sure it’s executed on each startup. Then it sets up a keylogger to steal information which it sends back to a specified email address.
Fortunately, the email address currently used by the Trojan is no longer valid. However, this could change at any minute, so Facebook customers are advised to be careful.